Method and system for measuring status and state of remotely executing programs

Inactive Publication Date: 2008-09-25
IBM CORP
View PDF45 Cites 32 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Benefits of technology

[0010]The present disclosure provides a set of mechanisms to perform integrity measurements dynamically and efficiently, and the resulting attestation methods.

Problems solved by technology

However, the applications are not measured at each load since that incurs significant overhead.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for measuring status and state of remotely executing programs
  • Method and system for measuring status and state of remotely executing programs
  • Method and system for measuring status and state of remotely executing programs

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030]An aspect of the present invention includes an improved system and method for measuring status and state of a remote runtime environment. A major problem exists in scalability with regard to a number of measurements which can be taken (run-time overhead, memory overhead) with respect to a server execution environment or any computer execution environment. The scalability issue extends reporting issues to remote parties for evaluation as well (evaluation overhead).

[0031]The present invention attests to the status and state of remotely executing programs, and may provably attest the status and state of remote and / or dynamic runtime environments. In useful embodiments, before a program is executed, a secure hash sum is computed over the instructions of the program, and the result is stored in a coprocessor to prove to an external party what is actually running on a system. The determination of what is running includes kernel modules, shared libraries, java code, java scripts, etc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A system and method for providing attestation and / or integrity of a server execution environment are described. One or more parts of a server environment are selected for measurement. The one or more parts in a server execution environment are measured, and the measurements result in a unique fingerprint for each respective selected part. The unique fingerprints are aggregated by an aggregation function to create an aggregated value, which is determinative of running programs in the server environment. A measurement parameter may include the unique fingerprints, the aggregated value or a base system value and may be sent over a network interface to indicate the server environment status or state.

Description

RELATED APPLICATIONS INFORMATION[0001]This application is a continuation of co-pending U.S. patent Ser. No. 10 / 734,532, filed Dec. 12, 2003, which is incorporated by reference herein in its entirety.BACKGROUND OF THE INVENTION[0002]1. Field of the Invention[0003]The present invention relates to software measurement and attestation, and more particularly to software measurement of status and state of remote running programs.[0004]2. Description of the Related Art[0005]Attesting or determining the status of running programs on a computer device is difficult as the entire process is dynamic. It is even more difficult in a client server environment where multiple remote clients are trying to gain access to a server and desire a system check to ensure the safety and security of their own systems.[0006]Conventional systems, such as, a Trusted Computing Group (TCG) Trusted Platform Module (TPM) provide some measurements. Current Basic Input Output Systems (BIOS) and the bootstrap loaders (...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(United States)
IPC IPC(8): G06F15/173
CPCG06F21/577
Inventor SAILER, REINERVAN DOORN, LEENDERT PETERZHANG, XIAOLAN
Owner IBM CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap